Malware

Malware.AI.3844374161 removal tips

Malware Removal

The Malware.AI.3844374161 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3844374161 virus can do?

  • Dynamic (imported) function loading detected
  • Authenticode signature is invalid
  • Network activity detected but not expressed in API logs
  • Binary compilation timestomping detected

Related domains:

wpad.local-net

How to determine Malware.AI.3844374161?



File Info:

name: 112544E51899D2C5DAB1.mlw
path: /opt/CAPEv2/storage/binaries/40901cb940af946d7917e3d0ab4faf8ec401b8810da175b9eb79cc82d7afdfac
crc32: 59707B2A
md5: 112544e51899d2c5dab1f20a1774973d
sha1: bb7f830a5d85d313c6fa64b75ae25af692fa65f0
sha256: 40901cb940af946d7917e3d0ab4faf8ec401b8810da175b9eb79cc82d7afdfac
sha512: 0f14e694b0fa7f83cfe72d4d41f79fec8755f2664dbe0ab4f939c38f63675526cc27a8712c09c27961edc395e15495cb4594f15dbbc4f5dc98ed95fa5a341e72
ssdeep: 384:jfLcFL2dMRz6ajj9w+O3+nHfrh5559iW60NPSl6uW8A5toPbnG2PGN+:jIMd0jZ6u/55J6rs15tojn0A
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T186D23B7543A8C7B6C698473DED33465103B6D3833116E699FFACE88BBF4772501002AA
sha3_384: c4919dcc727ac70b7c4d21680ac3374be7cd40d81434b61ada56f77435983a4608f0718c84b5743f5bb016eca0309b82
ep_bytes: ff250020400000000000000000000000
timestamp: 2082-03-12 20:15:14


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: SiMay.RemoteService.Loader
FileVersion: 1.0.0.0
InternalName: SiMayService.Loader.exe
LegalCopyright: Copyright ©  2019
LegalTrademarks: 
OriginalFilename: SiMayService.Loader.exe
ProductName: SiMay.RemoteService.Loader
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Malware.AI.3844374161 also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Bulz.298313
FireEyeGen:Variant.Bulz.298313
CAT-QuickHealTrojan.WacatacFC.S20327769
McAfeeGenericRXNH-DE!112544E51899
K7AntiVirusTrojan ( 00560e131 )
K7GWTrojan ( 00560e131 )
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Agent.CNY
TrendMicro-HouseCallTROJ_GEN.R067C0PIG21
KasperskyHEUR:Backdoor.MSIL.SiMay.gen
BitDefenderGen:Variant.Bulz.298313
AvastWin32:MalwareX-gen [Trj]
Ad-AwareGen:Variant.Bulz.298313
SophosMal/Generic-S
TrendMicroTROJ_GEN.R067C0PIG21
McAfee-GW-EditionGenericRXNH-DE!112544E51899
EmsisoftGen:Variant.Bulz.298313 (B)
SentinelOneStatic AI – Suspicious PE
AviraHEUR/AGEN.1142413
MAXmalware (ai score=85)
MicrosoftTrojan:Win32/Woreflint.A!cl
GDataGen:Variant.Bulz.298313
CynetMalicious (score: 99)
AhnLab-V3Malware/Win32.RL_Generic.C4310653
ALYacGen:Variant.Bulz.298313
VBA32TScope.Trojan.MSIL
MalwarebytesMalware.AI.3844374161
APEXMalicious
IkarusTrojan.MSIL.Agent
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/SiMay.CNY!tr.bdr
AVGWin32:MalwareX-gen [Trj]
PandaTrj/GdSda.A

How to remove Malware.AI.3844374161?

Malware.AI.3844374161 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment